Jump to content


  • Content Count

  • Joined

  • Last visited

1 Follower

About alvarnell

  • Rank
    True Member

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. That's not what it means, but iOS has so far managed to keep malware from getting inside (unless you jailbreak it), so there's really nothing to look for.
  2. Please make sure you have read this pinned article: which should answer most of your questions. Apple iOS is orders of magnitude more secure than Android, so there is very little left over to protect you from. You only get Call blocking, Web Protection and Ad Blocking, but that's all you should ever need. I doubt there is any way to use your android license for premium purchases since all in-app purchases must be through Apple's App Store.
  3. alvarnell

    Remove Blacklist - triancal.tk

    Forcepoint ThreatSeeker finds them "Suspicious": https://www.virustotal.com/#/url/f32629271fb321ca7c972093a0914d3f13722dc8d2da22a9daad3d4fc3f7d890/detection
  4. alvarnell

    Something weird I have noticed

    Sorry, but I'm not understanding at all what you perceive as a problem. The number of files scanned will usually vary, based on the number of files added to or removed from a watched directory (folder). Some are temporary files that number in the thousands per day that need to be used to perform a variety of functions. Others are files you downloaded and later deleted or moved from the download area. So unless I'm missing something, everything about those last two scans appear normal. It does appear that the 21:58:34 scan appears to have been a freeze of some sort. Unusual, but not unheard of. Could have been a number of things. There may have been a "hang" diagnostic report logged, so the developer may ask to see that log, but not here. Lots of apps freeze at times, usually due to a temporary Internet connectivity issue, but unless it becomes a frequent occurrence, I wouldn't give it any more consideration. Same with your Firefox freeze. I get those with all my browsers occasionally. Sometimes it's a bug, others a DNS issue or just the Internet doing it's thing. It's never been found to be malware. AOSHearbeat is an Apple System process that runs every 24 hours for a short period. AFAIK It's purpose has not been documented.
  5. alvarnell

    Exclusions on Mac client

    Way past my bedtime, so I won't be able to fully respond tonight, so just a couple of comments. Malwarebytes for Mac does not use a typical scanner approach to searching for malware. By and large it only looks for files with specific names in specific places where they are known to be installed. I believe there are a few exceptions where heuristics are used, but if the same file is renamed or moved to a new location, it generally won't be found without updating the database. As far as I know, scheduled scans are identical to manual scans without the need for user initiation. Neither look at all files / folders on the entire drive. I know nothing about Malwarebytes Endpoint Protection except that a different team is responsible for it's development and support.
  6. alvarnell

    Exclusions on Mac client

    You may have a point about on-access scanning, but I have always been under the impression that Real-Time Protection only scans files that are new or have been modified. Touched or Read files should not be triggering a scan unless RT is a misnomer. I'm also under the impression the RT Scanning only looks at locations where malware has been known to be installed and does not watch your entire drive, so there are only a few folders that could be excluded and doing so would significantly reduce protection. Excluding Files or Folders outside of the ones being monitored would have no impact at all. The type of backup plan could make a difference in that crashplan requires Internet Connectivity, which is the only type of Application that can be excluded for Windows. There are a few others that need Internet access, but most users use TimeMachine, CCC and SuperDuper! which do not. But even their, Malwarebytes for Mac is not involved in Internet data flow at all and I don't know of any plans to. There are separate extensions/add-ons for Firefox and Chrome under beta testing and there's a Safari extension in planning, but those are separate software programs at present.
  7. alvarnell

    Exclusions on Mac client

    I am aware of a few such features that have been and will continue to be added to the Mac version, but I don't think you should expect all of them to be since the Operating Systems are very different with regard to the available attack vectors and locations in which malware can be installed. That being said, I believe the developer is aware of some issues involving backup software (it might be helpful to mention it by name here) and is actively working to overcome such problems. I'm curious as to exactly which of the Windows Setting you feel could be excluded in your setup to preclude that specific issue? The only two exclusions I see that would be applicable to the current version of Mac Malwarebytes are "File or Folder" and "Previously Detected Exploit" and I don't see how either would apply to backup software. Certainly low CPU use has always been a hallmark objective of Malwarebytes for Mac and it's predecessors and I don't expect that to be relaxed as a high priority goal going forward.
  8. alvarnell

    Webwatcher Removal Failed

    See if this helps
  9. You've posted to the Apple Macintosh forum, so I doubt you'll get help here. Hopefully an administrator can move this for you.
  10. Not sure which action results in the error tone, but you need to hold the power button (see https://support.apple.com/HT201150 for location) for up to 10 seconds to force shutdown. Are you able to upgrade to Malwarebytes for Mac 3? That will almost certainly solve your problem.
  11. You'd need to contact customer support about your options: https://support.malwarebytes.com/community/consumer/pages/contact-us
  12. Have you tried typing these three keys simultaneously control-option(sometimes labeled alt)-esc to bring up a "Force Quit Applications" window? Highlight the Malwarebytes application, click the "Force Quit" button and confirm that you want to force "Malwarebytes" to quit. If that doesn't work, then you will need to hold the power on button down for a few seconds until the computer shuts down.
  13. alvarnell

    New threat! Weknow.ac

    Not everything shown in the article works for every user, but I can confirm that the "trick" has worked for some (including me). You may be running into some new variant that has not been revealed to the Malwarebytes signature staff. If that's the case, they will need to obtain some additional information from you which may be sensitive and best not shown here in a public forum. In such cases, it's best to Submit a ticket.
  14. I don't believe that information is available to Mac users. The "Show Quarantine" button simply opens the Quarantine Folder in Finder. The reports tab will probably tell you when the file(s) was/were quarantined, but the report itself cannot be viewed to reveal it's original location. There used to be a log in the User ~/Library/Application Support/Malwarebytes/log.txt, but mine has not had an entry since the end of May. If you can give us the name of the file and the infection name if you recall, we might be able to give you some clues as to where it originated.
  15. There are several possibilities here. First take a look at a couple of documents to see if anything in them applies to your situation: Malwarebytes for Mac did not resolve my problem How to remove WeKnow malware (and others) You may be running into some new variant that has not been revealed to the Malwarebytes signature staff. If that's the case, they will need to obtain some additional information from you which may be sensitive and best not shown here in a public forum. In such cases, it's best to Submit a ticket. Sometimes such redirects are caused by javascript code on the web site you are visiting and not by anything on your Mac. Usually such code is contained in advertising on that site (called malvertising). If these redirects only occur when you visit specific sites, then that is almost certainly your issue. Malwarebytes for Mac will not protect you against such attacks and your only defense is the use of a good Adware Blocker. Malwarebytes has a couple of them in beta testing right now for Google Chrome and Firefox, but the Safari version is still in development. Currently available Safari Adblock extensions can be found here.

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.